September 19, 2020
David Redekop

This Week In Nerd News – August 24, 2020

Your weekly top 5 technical and security issues Nerds should pay attention to:

Microsoft Put Off Fixing Zero Day for 2 Years.

Steve Gibson weighs in on Security Now Episode #780 as well. Really not surprising that Red Teams (adversary emulators that test your defenses) have been so successful of late on any windows network.

A security flaw in the way Microsoft Windows guards users against malicious files was actively exploited in malware attacks for two years before last week, when Microsoft finally issued a software update to correct the problem.

 

Read More: Microsoft Put Off Fixing Zero Day for 2 Years

 

Google fixes major Gmail bug seven hours after exploit details go public.

Attackers could have sent spoofed emails mimicking any Gmail or G Suite customer.

Google has patched on Wednesday a major security bug impacting the Gmail and G Suite email servers.

The bug could have allowed a threat actor to send spoofed emails mimicking any Gmail or G Suite customer.

 

Read More: Google fixes major Gmail bug seven hours after exploit details go public 

 

FBI and CISA warn of major wave of vishing attacks targeting teleworkers.

The attackers collected login credentials for corporate networks, which they then monetized by selling the access to corporate resources to other criminal gangs.

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint security advisory on Thursday, warning about an ongoing wave of vishing attacks targeting the US private sector.

Vishing, or voice phishing, is a form of social engineering where criminals call victims to obtain desired information, usually posing as other persons.

 

Read More: FBI and CISA warn of major wave of vishing attacks targeting teleworkers 

 

New P2P botnet infects SSH servers all over the world.

Administrators who don’t protect SSH servers with both a strong password and a cryptographic certificate may already be infected with malware that’s hard for the untrained eye to detect.

Researchers have found what they believe is a previously undiscovered botnet that uses unusually advanced measures to covertly target millions of servers around the world.

 

Read More: New P2P botnet infects SSH servers all over the world

 

Booze and cruise providers are the latest to be hit by ransomware scourge.

Jack Daniel’s distiller and Carnival cruise operator both warn of personal data theft.

Ransomware operators are continuing their blitz on corporations with deep pockets, with Jack Daniel’s distiller Brown-Forman and cruise line behemoth Carnival being two of the latest to be hit.

 

Read More: Booze and cruise providers are the latest to be hit by ransomware scourge

 

Did you know?

On macOS there’s a native terminal utility called nettop which gives you real-time bandwidth consumption details by process.

My favourite way to run it is nettop -n -d -P -J bytes_in,bytes_out